216.73.216.223

Indicator (IOC)

stix Revoked AlienVault · Published 20/12/2025 23:08 · Modified 20/12/2025 23:26

Essential information

Value / Name
9ecf13027af42cec0ed3159b1bc48e265683feaefa331f321507d12651906a91
Confidence
100/100
Revoked
Yes
Valid from
23/01/2023 17:42
Valid until
27/04/2024 18:42
Pattern type
stix
Published
20/12/2025 23:08
Modified
20/12/2025 23:26
Author / Source
AlienVault

Description

SLF:SCPT:OffRelAttachedTemplateHttp.A

Pattern

[file:hashes.'SHA-256' = '9ecf13027af42cec0ed3159b1bc48e265683feaefa331f321507d12651906a91']

Labels / Tags

Labels: apt dns flux gamaredon maldocs phishing powershell russia telegram trident ursa ukraine

Marking (TLP)

TLP:CLEAR

Related entities

No linked attack reports or intrusion sets yet.